$ rpki-client -vvf rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft File: rLhNci0lVbSDPOQGgw_b_pgrfGY.mft (raw, json) Hash identifier: V+COTUBg7MRWZgr0otT/njDivNV91tkoJlmwMfX8ays= Subject key identifier: 16:30:17:07:78:4B:8B:4A:42:1B:45:23:88:5B:92:26:CF:9B:C2:06 Authority key identifier: AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 Certificate issuer: /CN=A9180669/serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft Manifest number: 10 Signing time: Sat 31 May 2025 07:36:15 +0000 Manifest this update: Sat 31 May 2025 07:36:15 +0000 Manifest next update: Sat 07 Jun 2025 07:36:15 +0000 Files and hashes: 1: rLhNci0lVbSDPOQGgw_b_pgrfGY.crl (hash: vCSxn2rku/iXnrgzJuaUmbw/f1728ovc/4foOyowckI=) 2: 7D1BFC5E24B411F08834DE10C4F9AE02.roa (hash: diVe3oDK8BNzbsZfVF9MUY+tHtrxSbiFO+M9PazMfpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180669, serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Validity Not Before: May 31 07:36:15 2025 GMT Not After : Jun 7 07:36:15 2025 GMT Subject: CN=683ab16f-3dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:38:a2:f6:63:13:b9:24:4e:e3:35:81:9e:d6: a4:74:6f:23:64:fe:b7:bc:63:c3:0f:fb:b0:0a:47: cc:59:6c:04:22:1d:d3:48:09:c9:b7:49:e1:9c:9e: 42:12:40:f1:25:95:b2:43:69:e4:b2:6b:a9:b8:fb: 17:3b:46:8d:00:53:e7:30:be:05:c1:e7:a1:ac:7f: 02:31:fc:1b:b7:71:38:80:0f:3b:7e:50:71:fe:15: 50:a2:f5:ee:03:d4:23:8e:dd:51:1a:20:25:c2:45: f7:31:2f:6d:11:52:b9:30:41:5f:fb:eb:6f:b9:4c: 33:a4:a3:e5:ec:a4:61:8e:a9:fc:1c:88:c5:3e:bc: 5f:34:3b:0f:ca:fd:12:50:5d:1a:12:e9:ee:54:f7: e9:5f:a2:59:5e:95:3d:47:13:bf:59:ce:09:c6:f3: 87:7c:a9:b6:56:5c:89:ee:e0:0d:b6:6a:8d:35:7a: ba:28:51:9b:87:31:61:39:25:b2:2a:19:ac:c2:15: 99:4c:82:76:f8:03:6f:ad:35:97:5c:b7:7b:ef:02: 54:55:4d:54:6e:ea:35:77:e9:0d:c6:23:91:b3:ae: 11:7c:cc:e5:58:9c:cd:19:26:c2:62:ba:bd:15:2d: 9a:b2:61:8f:0e:db:0d:ca:b3:d6:9c:2c:95:0e:5a: a5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:30:17:07:78:4B:8B:4A:42:1B:45:23:88:5B:92:26:CF:9B:C2:06 X509v3 Authority Key Identifier: keyid:AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:06:de:4d:c9:eb:ec:a0:18:c8:ed:9b:af:cb:9e:75:14:8a: 45:08:24:00:f5:69:9f:4b:5e:67:10:f0:23:8c:38:ba:18:4e: 8f:f8:69:5a:e9:0d:f1:8a:b6:01:c9:3b:f8:7f:25:fc:72:b6: 52:41:52:44:75:f3:c2:fb:a9:46:c8:63:d1:2b:93:b9:eb:b2: fe:40:a6:dc:b0:db:21:5f:74:42:33:62:a7:34:22:2e:3e:e8: 16:4e:2a:b5:64:13:c0:a2:da:28:49:4b:ae:44:95:c3:b4:d2: d9:92:60:e3:c7:c3:c2:aa:69:6a:5f:8f:92:6c:f7:3c:3d:16: 24:c1:3c:df:f1:13:c8:d3:dc:2d:f0:e4:15:4a:24:29:68:0a: 92:c5:67:ed:fd:8a:07:57:3c:7e:10:0e:57:85:22:82:89:f6: 5f:36:c2:e6:28:63:df:9e:7f:22:6b:36:ec:00:53:5c:6a:05: 53:3c:ac:5d:72:95:66:46:dc:e4:8a:86:1a:50:c9:97:eb:57: 73:5d:f2:60:99:46:73:6a:24:08:3c:d8:27:80:6d:50:1a:6a: 47:3f:1b:67:d2:bc:88:da:69:ac:b6:42:6f:84:38:25:36:db: a2:21:66:cc:c1:0a:b7:7d:f2:3d:05:df:ec:c8:cf:8b:41:bf: 46:c3:73:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDY2OTExMC8GA1UEBRMoQUNCODRENzIyRDI1NTVCNDgzM0NFNDA2ODMwRkRCRkU5 ODJCN0M2NjAeFw0yNTA1MzEwNzM2MTVaFw0yNTA2MDcwNzM2MTVaMBgxFjAUBgNV BAMTDTY4M2FiMTZmLTNkYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsOKL2YxO5JE7jNYGe1qR0byNk/re8Y8MP+7AKR8xZbAQiHdNICcm3SeGcnkIS QPEllbJDaeSya6m4+xc7Ro0AU+cwvgXB56GsfwIx/Bu3cTiADzt+UHH+FVCi9e4D 1COO3VEaICXCRfcxL20RUrkwQV/762+5TDOko+XspGGOqfwciMU+vF80Ow/K/RJQ XRoS6e5U9+lfollelT1HE79ZzgnG84d8qbZWXInu4A22ao01erooUZuHMWE5JbIq GazCFZlMgnb4A2+tNZdct3vvAlRVTVRu6jV36Q3GI5GzrhF8zOVYnM0ZJsJiur0V LZqyYY8O2w3Ks9acLJUOWqUZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFjAXB3hL i0pCG0UjiFuSJs+bwgYwHwYDVR0jBBgwFoAUrLhNci0lVbSDPOQGgw/b/pgrfGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNjY5Lzc3RTkwNEM4MjRC MTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJTRFBPUUdnd19iX3BncmZH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckxoTmNpMGxWYlNEUE9RR2d3X2JfcGdyZkdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw NjY5Lzc3RTkwNEM4MjRCMTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJT RFBPUUdnd19iX3BncmZHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABUG3k3J6+ygGMjtm6/LnnUUikUIJAD1aZ9LXmcQ8COMOLoYTo/4aVrp DfGKtgHJO/h/JfxytlJBUkR188L7qUbIY9Erk7nrsv5Aptyw2yFfdEIzYqc0Ii4+ 6BZOKrVkE8Ci2ihJS65ElcO00tmSYOPHw8KqaWpfj5Js9zw9FiTBPN/xE8jT3C3w 5BVKJCloCpLFZ+39igdXPH4QDleFIoKJ9l82wuYoY9+efyJrNuwAU1xqBVM8rF1y lWZG3OSKhhpQyZfrV3Nd8mCZRnNqJAg82CeAbVAaakc/G2fSvIjaaay2Qm+EOCU2 26IhZszBCrd98j0F3+zIz4tBv0bDc8A= -----END CERTIFICATE-----Generated at Sat May 31 16:07:07 2025 by rpki-client